PREVIOUS
PREVIOUS
  • TSPY_DYRE.IK

    This DYRE variant is downloaded by an upgraded version of UPATRE that has the capability to disable detection. Other notable routines of the said UPATRE variant include disabling of firewall/network related security via modifying registry entries and stopping of related services.
    Read more   

  • TROJ_KILIM.EFLD

    This malware poses as a Chrome browser plugin required to play videos. Users receive a message with a link in the social networking site, Facebook.
    Read more   

  • BKDR_ROMBERTIK.A

    This malware hooks itself onto certain browsers in the affected system for purposes of information theft. It also wipes the affected system's Master Boot Record(MBR) if it detects security detection efforts, which can cause loss of sensitive data/critical documents.
    Read more   

  • TROJ_WERDLOD.D

    This online banking Trojan modifies an affected system's proxy settings and adds a malicious root certificate to allow information theft at the network level. These behaviors are seen in malware used in Operation Emmental.
    Read more   

  • W2KM_BARTALEX.SMA

    BARTALEX is a macro malware responsible to a spam outbreak affecting enterprises. It uses Microsoft document and social engineering lures, which in this case, it leverages Automated Clearing House.
    Read more   

  • TROJ_CRYPTESLA.CAG

    This crypto-ransomware is one of the malware payloads of Fiesta exploit kit. Typically, exploit kits are used to deliver or spread threats.
    Read more   

  • BKDR_SIMDA.SMEP

    This malware family takes its name from the SIMDA botnet operations, which was taken down in April 2015.This backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.
    Read more   

  • BKDR_SIMDA.SMEP2

    This malware, which is known for its HOSTS file modification routines, is related to the SIMDA botnet. Last April 2015, Trend Micro together with Cyber Defense Institute, Interpol, and other security vendors collaborated for the takedown of the said botnet.
    Read more   

  • VBS_KJWORM.SMA

    This malware is involved in the targeted attack incident that shut down a global French-language television network on April 2015. Users affected by this malware may find the security of their systems compromised.
    Read more   

  • BAT_CRYPVAULT.A

    This crypto-ransomware encrypts files and appends an extension that may look like it is a quarantined file. Quarantined files are usually done by anti-malware products.
    Read more   

PREVIOUS
PREVIOUS